$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e203536303436.roa File: 34332e3232362e34382e302f32342d3234203d3e203536303436.roa (raw, json) Hash identifier: PuW/a+oizzDTbMv41+Jt+iCKf7rueTut24nRTsVD4OE= Subject key identifier: 29:92:FA:D3:BE:8A:4E:92:BB:BD:07:88:67:BE:9A:AD:EF:89:44:92 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 12A8303414D6FD4BCF4A5C37E6C4EC8CABC00E10 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e203536303436.roa Signing time: Mon 20 Apr 2026 06:45:42 +0000 ROA not before: Mon 20 Apr 2026 06:40:42 +0000 ROA not after: Mon 19 Apr 2027 06:45:42 +0000 asID: 56046 IP address blocks: 43.226.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:a8:30:34:14:d6:fd:4b:cf:4a:5c:37:e6:c4:ec:8c:ab:c0:0e:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:40:42 2026 GMT Not After : Apr 19 06:45:42 2027 GMT Subject: CN=2992FAD3BE8A4E92BBBD078867BE9AADEF894492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ee:55:f5:b0:55:81:6a:6d:61:b2:74:a2:d0: e2:30:12:ac:fc:d5:1e:34:2c:fc:7e:8a:dd:6f:39: 5a:94:69:7b:68:51:65:79:f7:15:31:a0:65:30:3b: 43:0d:33:25:69:fd:1c:1f:ef:42:9e:6f:11:1c:cb: 22:c2:4c:bc:06:98:7d:b1:0c:28:54:af:af:50:22: 08:06:0a:db:e5:49:52:26:d7:41:80:bc:79:44:02: 74:4d:d2:72:68:2f:5a:54:76:5e:41:c9:fb:7d:70: 5e:17:a3:57:64:c6:ed:87:f8:3a:4c:69:8c:04:6b: bf:b6:14:ee:9d:a0:b0:c1:ce:e9:76:58:91:9f:5c: f6:55:45:88:ce:cb:ce:de:d9:b8:a5:04:6b:e4:f0: cc:07:fe:0c:98:e2:c1:f2:e6:4e:99:de:ec:0f:e1: 6b:cc:3a:13:39:23:20:27:e7:87:1b:61:04:a6:7c: d7:a0:be:07:7f:82:cb:e4:07:e4:87:62:1c:bb:39: 01:47:23:9e:79:59:6b:58:3d:64:3f:36:03:66:a2: 18:39:72:81:39:6c:7d:f0:94:45:51:72:b4:5b:9f: 08:51:28:b4:1d:fc:5e:08:6d:1b:54:41:62:8e:a6: 4a:a7:78:3c:24:5a:2c:fa:f9:b4:a8:77:05:3c:35: a6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:92:FA:D3:BE:8A:4E:92:BB:BD:07:88:67:BE:9A:AD:EF:89:44:92 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.48.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:e1:ad:40:ae:aa:ec:bf:6b:02:23:c9:94:cb:4f:33:72:e6: 88:60:6f:3c:39:9e:0b:35:f7:3d:5b:8d:6e:12:84:e6:d5:18: f9:6e:f1:5a:df:a1:56:cf:cd:5b:93:b7:c5:24:ec:84:6e:97: a3:c3:d3:3c:3a:2e:97:84:fa:3b:ce:3c:ad:02:60:68:85:b3: 48:67:3f:45:5f:be:8a:6b:f9:4b:6c:40:1c:47:ea:62:e1:a2: 88:10:e0:ba:01:5a:2c:12:c6:55:a3:12:37:70:92:45:54:55: 4c:01:32:15:60:36:e3:65:87:ce:9f:cb:be:63:da:6c:69:48: 37:e0:50:5b:ae:56:a0:bf:e8:1d:ea:48:09:97:11:18:49:29: cc:85:00:f4:21:87:fc:32:51:13:7c:8e:95:ed:fd:13:65:70: 0b:6a:96:7f:2a:ca:e1:92:57:77:1b:76:42:1f:4e:3e:dc:c0: 48:2c:5c:7a:62:33:bd:85:f4:7e:ed:de:aa:49:ff:41:f8:86: 36:90:cb:0e:39:1c:aa:f5:0d:ff:3c:45:76:45:50:ac:fc:ff: 42:57:e3:83:81:47:0e:b5:5f:e6:d2:b4:a7:fe:37:f9:07:a6: 5f:05:ed:3c:8f:10:71:4b:42:cb:f3:fe:81:18:ca:c2:89:29: 0e:3f:83:79 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUEqgwNBTW/UvPSlw35sTsjKvADhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQwNDJaFw0yNzA0MTkwNjQ1NDJaMDMxMTAvBgNV BAMTKDI5OTJGQUQzQkU4QTRFOTJCQkJEMDc4ODY3QkU5QUFERUY4OTQ0OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV7lX1sFWBam1hsnSi0OIwEqz8 1R40LPx+it1vOVqUaXtoUWV59xUxoGUwO0MNMyVp/Rwf70KebxEcyyLCTLwGmH2x DChUr69QIggGCtvlSVIm10GAvHlEAnRN0nJoL1pUdl5Byft9cF4Xo1dkxu2H+DpM aYwEa7+2FO6doLDBzul2WJGfXPZVRYjOy87e2bilBGvk8MwH/gyY4sHy5k6Z3uwP 4WvMOhM5IyAn54cbYQSmfNegvgd/gsvkB+SHYhy7OQFHI555WWtYPWQ/NgNmohg5 coE5bH3wlEVRcrRbnwhRKLQd/F4IbRtUQWKOpkqneDwkWiz6+bSodwU8NaahAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUKZL6076KTpK7vQeIZ76are+JRJIwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM2 MmUzNDM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACviMDANBgkqhkiG9w0BAQsFAAOCAQEAKuGtQK6q7L9rAiPJlMtPM3LmiGBv PDmeCzX3PVuNbhKE5tUY+W7xWt+hVs/NW5O3xSTshG6Xo8PTPDoul4T6O848rQJg aIWzSGc/RV++imv5S2xAHEfqYuGiiBDgugFaLBLGVaMSN3CSRVRVTAEyFWA242WH zp/LvmPabGlIN+BQW65WoL/oHepICZcRGEkpzIUA9CGH/DJRE3yOle39E2VwC2qW fyrK4ZJXdxt2Qh9OPtzASCxcemIzvYX0fu3eqkn/QfiGNpDLDjkcqvUN/zxFdkVQ rPz/Qlfjg4FHDrVf5tK0p/43+QemXwXtPI8QcUtCy/P+gRjKwokpDj+DeQ== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:28 2026 by rpki-client